Module Name
ID-One PIV 2.4 on Cosmo V8.2 NPIVP & CIV Configurations
Caveat
When operated in FIPS mode and initialized to Overall Level 2 per Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: Level 4
- EMI/EMC: Level 3
- Design Assurance: Level 3
Description
ID-One PIV 2.4 on Cosmo V8.2, is a dual interface smartcard chip (ISO 7816 & ISO 14443) that contains a Personal Identity Verification (PIV) application with On-Card-Fingerprints-Comparison that can be configured to strictly comply with NIST FIPS 201-2 Standard for US Government Federal Employees and Contractors (NPIVP configuration), or support enhanced functionalities (ANSI 504), and additional access conditions (SO_PIN), as well as stronger cryptography (ECC P521) while maintaining backward compatibility with NPIVP, to address Civilian markets worldwide (CIV configuration).
FIPS Algorithms
AES |
Certs. #C982 and #C989 |
CVL |
Certs. #C984, #C986 and #C991 |
DRBG |
Cert. #C987 |
ECDSA |
Cert. #C990 |
KAS-SSC |
vendor affirmed |
KBKDF |
Cert. #C995 |
KDA |
vendor affirmed |
KTS |
AES Cert. #C982 and AES Cert. #C989; key establishment methodology provides 128 or 256 bits of encryption strength |
RSA |
Cert. #C994 |
SHS |
Certs. #C978 and #C980 |
Triple-DES |
Cert. #C981 |
Hardware Versions
P/N ‘30’
Firmware Versions
['6F01' with ID-One PIV Applet 2.4.2 NPIVP configuration] and ['6F01' with ID-One PIV Applet 2.4.2 CIV configuration]